5 matches found
CVE-2023-6272
The Theme My Login 2FA WordPress plugin before 1.2 does not rate limit 2FA validation attempts, which may allow an attacker to brute-force all possibilities, which shouldn't be too long, as the 2FA codes are 6 digits...
Design/Logic Flaw
The Theme My Login 2FA WordPress plugin before 1.2 does not rate limit 2FA validation attempts, which may allow an attacker to brute-force all possibilities, which shouldn't be too long, as the 2FA codes are 6 digits...
CVE-2023-6272 Theme My Login 2FA < 1.2 - Lack of Rate Limiting
The Theme My Login 2FA WordPress plugin before 1.2 does not rate limit 2FA validation attempts, which may allow an attacker to brute-force all possibilities, which shouldn't be too long, as the 2FA codes are 6 digits...
Theme My Login 2FA < 1.2 - Lack of Rate Limiting
Description The plugin does not rate limit 2FA validation attempts, which may allow an attacker to brute-force all possibilities, which shouldn't be too long, as the 2FA codes are 6 digits. PoC https://packetstormsecurity.com/2309-exploits/wpmylogin-bruteforce.txt...
TOSHIBA e-Studio 232/233/282/283 - Change Admin Password CSRF Vulnerability
No description provided by source. Exploit Title: TOSHIBA e-Studio 232/233/282/283 Change Admin Password CSRF Vulnerability Date: 02.10.2013 Exploit Author: Hubert Gradek PL Affected version: firmware T377SY0EXXX Tested on: TOSHIBA e-Studio 232 T377SY0E354 / 233 T377SY0E331 CVE : No CVE exists -...